The following information provides you with details about how we process your personal data and your rights under data protection law.
Responsibility for data processing and company data protection officer
In line with Article 4, Paragraph 7 of the EU General Data Protection Regulation (GDPR) responsibility lies with:
dots Gesellschaft für Softwareentwicklung mbH
Schlesische Str. 27, 10997 Berlin
Telephone: +49 (0) 30 695 799
(See our Legal Note)
If you have any questions about data protection, you are welcome to contact our company data protection officer at any time:
Dr. Frederike Rehker
Konica Minolta Business Solutions Europe GmbH
Europaallee 17, 30855 Langenhagen
Telephone: +49 (0)511 7404-0
You hold the following rights with regard to your personal data processed by us:
- access to information on the categories of the processed data, purposes of processing, recipients or categories of recipients of your data, and the planned retention period (Article 15 of the GDPR)
- correction of inaccurate or incomplete data and/or their amendment (Article 16 of the GDPR)
- deletion of data in line with Article 17 of the GDPR, in particular if the personal data are no longer necessary for the intended purpose or are processed illegally, or if you withdraw your consent or have lodged an objection to processing
- restriction of data processing in line with Article 18 of the GDPR in certain circumstances insofar as, for instance, deletion is no longer possible or the deletion obligation is at issue
- in line with Article 20 of the GDPR on data portability, to have us provide you or a third party with the personal data you supplied to us in a structured common machine-readable format
- for reasons arising from your particular situation the right to object to data processing on account of a legitimate interest (Article 21, Paragraph 1 of the GDPR)
- withdrawal of your consent at any time to be effective in the future (Article 7, Paragraph 3 of the GDPR); this also of course also applies to the withdrawal of consents you granted us prior to the GDPR coming into effect
- in line with Article 77 of the GDPR to lodge a complaint about data processing with the responsible supervisory authority
Collection of personal data when you visit our website
If you only visit our website for informational purposes, i.e. if you do not register or otherwise provide us with information, we shall only collect the personal data that your personal browser sends to our server. These data are necessary from a technical point of view to let you view our website. They are also required in order to ensure the stability and security of our website. (Legal basis is Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR).
- IP address
- Date and time of request
- Country of origin of request
- Content requested (specific web page)
- Access status/http status code
- Website from which the request is launched
- Operating system and interface
- Browser software language and version
- Data volume sent in each case
- Time zone difference to Greenwich Mean Time (GMT)
Some of the services offered on our website can only be performed if we are able to contact you. This means that availing yourself of these services is dependent on you providing us with specific personal (contact) data. We only collect, use and process these data insofar as this is necessary for the performance of the respective services. If you contact us via email or a contact form, the data you enter (your email address and other data you impart to us of your own free will, such as your name/telephone number) are stored by us so we can process your request and answer any questions you may have. We delete the data we have stored about you when it is no longer required. We restrict processing in the case of statutory retention obligations. We process your data in line with Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR.
Purpose of processing, legal basis and retention period
If we request consent to process your personal data, we do so in line with Article 6, Paragraph 1, Sentence 1, Letter a of the GDPR. If processing your personal data is required to fulfil a contact or pre-contractual measures prompted by your request, our processing is legally based on Article 6, Paragraph 1, Sentence 1, Letter b of the GDPR. In cases in which processing of personal data is required to fulfil our legal obligations, processing is in line with Article 6, Paragraph 1, Sentence 1, Letter c of the GDPR. If processing of personal data is necessary to protect a legitimate interest of our company or a third party, and if at the same time the interests, basic rights and freedoms of the data subjects, which require the protection of personal data, do not take precedence over our legitimate interest, Article 6, Paragraph 1, Letter f of the GDPR shall serve as legal basis for said processing.
Unless otherwise specified, we delete personal data in accordance with Article 17 and 18 of the GDPR or restrict their processing. We only process and store your personal data for as long as they are required to fulfil our contractual and legal obligations. Data no longer required for the intended purpose are deleted regularly unless temporary further processing is necessary, which may arise on account of other legally permissible purposes. In compliance with documentation and legal retention obligations in Germany, the necessary documents are stored for six years in line with Article 257, Paragraph 1 of the German Commercial Code (HGB) and ten years in line with Article 147, Paragraph 1 of the German Fiscal Code (AO).
Recipients of your data
In general, we neither sell nor loan user data. We only transfer data to third parties beyond the scope of this privacy statement if it is necessary for the fulfilment of the relevant service you have requested. We work with cooperation partners to render our services. The latter perform services for you on their own responsibility/in relation to your contract with us. You can order these services and consent to the inclusion of the cooperation partner, or inclusion is based on legal permission. In the areas of Marketing, Sales, IT, Logistics and HR we also work with processors in line with Article 28 of the GDPR. These processors are carefully selected by us. We continue to bear responsibility for the protection of your data in the case of processing by a processor. In other cases we send data to government agencies at their request. However, this only takes place if a legal obligation, such as a court order, exists.
Where is my data processed?
We always process your data in Germany and European countries (EU/EEA). Insofar as your data are exceptionally processed in very limited special cases in countries outside the European Union (thus in so-called third countries), this will only take place provided you have given your express consent, it is legally envisaged, or it is necessary for us to perform our service for you. Insofar as we process data in third countries in these exceptional cases, this is performed subject to specific measures (i.e. on the basis of the existence of an adequacy decision by the EU Commission or appropriate guarantees, Article 44 et seq. of the GDPR).
Webanalytics: Use of Google Analytics
This website uses Google Analytics, a web analysis service of Google Inc. (“Google”). Google Analytics uses so-called cookies or text files stored on your computer which enable an analysis of your use of the website. The information generated by the cookie about your use of this website is usually transmitted to a Google server in the USA and stored there. However, in the case of IP anonymisation being activated on this website, Google will first truncate your IP address within the member states of the European Union and in other countries party to the Agreement on the European Economic Area. The full IP address will only be transmitted to a Google server in the USA and truncated there in exceptional cases. On behalf of the operator of this website, Google will use this information to evaluate your use of the website to compile reports about website activities and to perform other services related to website and Internet usage services for the website operator. The IP address transmitted by your browser as part of Google Analytics will not be consolidated with other data from Google. You can prevent the storage of cookies by setting your preferences in your browser software; however please note that in this case you may not be able to make full use of all the functions of this website. You can also prevent transmission of the data generated by the cookie related to your use of the website (including your IP address) to Google and its processing of this data by downloading and installing the browser plugin available under the following link (https://tools.google.com/dlpage/gaoptout?hl=en).
Opt-out cookies prevent the future collection of your data when you visit this website. To prevent Universal Analytics from collecting data across several devices, you must opt-out on all systems used. If you click here, the opt-out cookie will be set: Disable Google Analytics!
This website uses Google Analytics with the “AnonymizeIP()” function. IP addresses are truncated for further processing, thus precluding any linking to a particular individual. If a personal reference is included in the data collected about you, it will therefore be excluded directly and the personal data thus deleted immediately.
We use Google Analytics to analyse the use of our website and improve it on a regular basis. The statistics it yields lets us improve our product and make it more attractive to you as a user. In the exceptional cases in which personal data are transmitted to the USA, Google has submitted itself to the EU-US Privacy Shield (see https://www.privacyshield.gov/EU-US-Framework).
Third-party provider information: Google Dublin, Google Ireland ltd., Gordon House, Barrow Street, Dublin 4, Ireland
For more information on terms and conditions of use and privacy go to https://www.google.com/analytics/terms/us.html and https://support.google.com/analytics/answer/6004245?hl=en
The legal basis for the use of Google Analytics is Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR.
YouTube videos are included on our websites. They are stored on https://www.youtube.com, but can be played back directly on our website. On including videos on our website we activated advanced data protection mode. This means that if you do not play back videos, no data about you is transmitted to YouTube. However, if you play back videos, the data are sent to YouTube. Initially, YouTube receives the information that you have accessed the corresponding page on our website. Other data can also be transmitted to YouTube, of which we have no knowledge. In this case also, we have no influence on data transmission. If you log into YouTube the transmitted data are directly linked to your account. If you do not wish this to happen, you have to log out of YouTube before you play back videos on our websites. YouTube stores your data as a user profile and uses them for advertising and market research purposes and/or to tailor its website to user needs. Evaluation of this nature may in particular be used for targeted advertising (even in the case of users who have not logged in). YouTube offers you a right of objection to the creation to user profiles, which you must lodge directly with YouTube.
The YouTube privacy statement provides more information on the purpose and scope of data acquisition and processing, and also additional information on your rights and settings options to protect your privacy: https://www.google.de/intl/de/policies/privacy. Google also processes your personal data in the USA and has subjected itself to the EU-US Privacy Shield https://www.privacyshield.gov/EU-USFramework.
The legal basis for the inclusion of YouTube videos is Article 6, Paragraph 1, Sentence 1, Letter f of the GDPR.
We use Adobe Typekit Webfonts at dots.de. Typekit is a service offered by the company Adobe. This service offers fonts which are rendered in the user's browsers after contacting Adobes server in the USA.
On dots.de we integrate so called social bookmarks (Facebook, Twitter, Google+). Users of said services can thus collect links and news. The social bookmarks on our web site are just links to said services.
Data protection for job candidates
Since we must process your data in the recruitment process please note the following:
Sole controller and processor of your personal data is:
dots Gesellschaft für Softwareentwicklung mbH
Schlesische Str. 27
If you have questions about this or if you wish to contact our Data Protection Coordination Manager (DPCM) Mr. Sambale please send an email to: email@example.com
Our purpose to process your your data is to select a candidate for establishing an employment relationsship. We will not process your data for any other reason. The legal foundations for this processing are § 26 BDSG (German data protection law) in conjunction with Art. 6 para 1 lit. b) (Employment contract) und Art. 88 GDPR (data processing for an employment context). Providing personal data is essential to assess the application and, if applicable, to close an employment contract. An application without personal data cannot be considered. Automated decision-making does not happen.
Your data is exclusively distributed internally to the responsible and decision-making persons. We save your data only on our local servers in Berlin. It is not transfered to third countries.
We delete your data six month after the end of the recruitment process. The legal foundation is § 61b Abs. 1 ArbGG (The law governing labour courts) in conjunction with § 15 AGG (Anti discrimination law). If you would like to be considered for future job offers we will only save your data for up to 12 month after you gave us written consent to do so.
According to Art. 15 GDPR you have the right to receive information about the processing of your personal data. In addition you are at liberty to exercise your rights of the correction, deletion or, if deletion is not possible, of the restriction of processing and of the portability of your data according to Art. 16-18, 20 GDPR. If you want to make use of these rights, please contact our DPCM.
You further have the right to complain to the supervisory authority (This is: Berliner Beauftragte für Datenschutz und Informationsfreiheit) at any time.
If you consider our processing of your personal data not lawful, we kindly ask you to contact our DCPM.
In addition Art. 13 para. 2, lit b) GDPR gives you the right to veto the processing of your personal data at any time.
Konica Minolta has set out the following policy as the global benchmark for its own conduct:
Global Personal Data Protection Policy of Konica Minolta Group
As a growing global company, being engaged in various business areas, We, Konica Minolta Group recognize that the confidence of our customers, business partners, officers and employees is our most valuable asset. Konica Minolta Group also recognizes that we are, not only to provide the best products and services, but also to meet the highest standards regarding compliance and social responsibility.
Konica Minolta Group is committed to respect the privacy of our customers, business partners, officers and employees and to protect the personal data of our customers, business partners, officers and employees.
Scope and applicability of this Policy
This policy applies to us, Konica Minolta, Inc. (“Konica Minolta”) and all of its affiliated companies (“Group Companies”) and our officers and employees. “Affiliated” in this instance means, that Konica Minolta may enforce the adoption of this Policy directly or indirectly, on the basis of voting majority, majority management representation or by agreement. Konica Minolta and Group Companies (“Konica Minolta Group”) establish and enforce internal rules such as regulations and procedures in accordance with this Policy.
This Policy sets forth the basic principles of Konica Minolta Group’s data protection and data security standards and ensures compliance with national and international data protection laws in force all over the world. Therefore it comprises the internationally accepted data protection principles, intending not to replace, but to supplement the respective national data protection and privacy laws (“National Legislation”). This means, that the content of this Policy has to be observed in the absence of a corresponding National Legislation or if a National Legislation provides lower requirements than this Policy. On the other hand, a National Legislation always takes precedence in case of a conflict with this Policy or if the National Legislation provides stricter requirements than this Policy.
This Policy extends to all processing of personal data. In countries where the data of legal entities are protected to the same extent as personal data, this Policy applies equally to data of legal entities. Anonymized data, e.g. for statistical evaluations or studies, is not subject to this Policy.
Konica Minolta Group’s principles for processing of personal data
Lawfulness, fairness and transparency
Personal data will be collected and processed in a lawful, fair and transparent manner to protect the individual rights of the data subjects.
Restriction to a specific purpose
Personal data will only be collected for specified explicit and legitimate purposes and will not be processed in a manner incompatible with those purposes.
Data accuracy / Data actuality
Personal data will be accurate and where necessary kept up to date. Konica Minolta Group will take every reasonable step to erase or rectify inaccuracies without delay.
Data economy / Data minimization
Personal data will be adequate, relevant and limited to what is necessary. Personal data will not be stored longer than necessary.
Rights of data subjects
Konica Minolta Group respects the rights of all data subjects including rights of access to their data, the right of restriction of processing or erasure, and the right of accuracy. Konica Minolta Group will provide clear and unambiguous information about how and why subjects' data are collected and processed.
Time limits for storage of personal data will be defined. Konica Minolta Group erases personal data that are no longer necessary in relation to the purposes for which they have been collected or in a case a given consent is withdrawn and no other legitimate purpose for processing applies.
Security of processing / Data security
Personal data will be processed securely. Appropriate to the risk, technical and organisational measures will be taken against unauthorised processing or alteration, and against loss or destruction or unauthorized disclosure of or access to personal data transmitted, stored or otherwise processed. Konica Minolta Group will ensure ongoing integrity, availability, confidentiality and authenticity. Konica Minolta Group will ensure resilience of our systems and services processing personal data. In the event of an incident Konica Minolta Group will have the ability to restore the availability and access to data in a timely manner.
Data protection by design and by default
Konica Minolta Group will implement appropriate technical and organisational measures for ensuring that, by default, only personal data that is necessary for each specific purpose of the processing is processed. The principle of Data Protection by design and by default will be followed during the development of new products.
There shall be accountability in all processing activities. Konica Minolta Group is responsible for and able to demonstrate compliance.
Konica Minolta Group’s data protection organisation
Each Konica Minolta Group company shall appoint a qualified person, who is responsible for the implementation and observance of the aforementioned principles.